Splunk

Alcatraz Platform

Unified platform for managing facial biometric authentication & physical ACS.

ThreatScout

Federated SecOps platform for threat hunting across SIEMs, EDRs & data lakes.

Query.AI Federated Search for Splunk

Extends Splunk visibility via federated search across external data sources.

Qmulos Q-BA2

User behavior analytics & audit solution for insider threat detection

Splunk Security Content

Access a repository of Analytic Stories and security guides mapped to industry frameworks, with Splunk searches, machine learning algorithms, and playbooks for threat detection and response.

Boss of the SOC (BOTS) Dataset Version 3

A pre-indexed Splunk security dataset and CTF platform that provides realistic security data for training, research, and educational purposes for cybersecurity professionals and students.

Boss of the SOC (BOTS) Dataset Version 2

A security dataset and CTF platform available in full (16.4GB) and attack-only (3.2GB) versions, pre-indexed for Splunk to help security professionals practice analysis skills.

Splunk Attack Range

An open-source platform that builds instrumented environments, simulates attacks, and integrates with Splunk for detection rule development and testing.

Splunk Attack Data Repository

Curated datasets for developing and testing detections in SIEM installations.

Splunk SOAR Community Playbooks

Repository of default playbooks and custom functions for Splunk SOAR instances with content migration to Splunk's GitHub.

Splunk SOAR Connectors

Migrated Splunk SOAR Connectors to new GitHub organization for better organization and management.

ThreatHunting

A Splunk app mapped to MITRE ATT&CK to guide threat hunts.

Acapulco (Attack Community grAPh COnstruction)

A Splunk application that processes honeypot data from hpfeeds channels to generate clustered meta-events and visualizations for security analysis.

Tango

Tango is a set of scripts and Splunk apps for deploying honeypots with ease.